Revoke-AzureADUserAllRefreshToken

Module:

AzureAD Module

Invalidates the refresh tokens issued to applications for a user.

Syntax

Default (Default)

Revoke-AzureADUserAllRefreshToken
    -ObjectId <String>
    [<CommonParameters>]

Description

The Revoke-AzureADUserAllRefreshToken cmdlet invalidates the refresh tokens issued to applications for a user. The cmdlet also invalidates tokens issued to session cookies in a browser for the user. The cmdlet operates by resetting the refreshTokensValidFromDateTime user property to the current date and time.

Examples

Example 1: Revoke refresh tokens for a user

PS C:\> Revoke-AzureADUserAllRefreshToken -ObjectId "aaaaaaaa-0000-1111-2222-bbbbbbbbbbbb"

This command revokes the tokens for the specified user.

Parameters

-ObjectId

Specifies the unique ID of a user.

Parameter properties

Type:	String
Default value:	None
Supports wildcards:	False
DontShow:	False

Parameter sets

(All)

Position:	Named
Mandatory:	True
Value from pipeline:	True
Value from pipeline by property name:	True
Value from remaining arguments:	False

CommonParameters

This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutBuffer, -OutVariable, -PipelineVariable, -ProgressAction, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.

Related Links

• Revoke-AzureADSignedInUserAllRefreshToken
• (#AzureAD: Certificate based authentication for iOS and Android now in preview!